The Open Source Security Foundation (OpenSSF) announced an expansion of its free course “Developing Secure Software” (LFD121).
ThreatX has extended its Runtime API and Application Protection (RAAP) offering to provide always-active API security from development to runtime, spanning vulnerability detection at Dev phase to protection at SecOps phase of the software lifecycle.
By combining runtime detection and dynamic scanning with protection, ThreatX’s RAAP solution empowers DevSecOps to detect and remediate vulnerabilities earlier, while protecting vulnerable APIs – all within one platform. Leveraging extended Berkeley Packet Filter (eBPF) technology, RAAP enables real-time, persistent observability into API/App architecture, traffic data exchanges, vulnerabilities, and threats (including zero-day attacks). It endlessly observes application/API security posture, east-west and north-south, so that vulnerabilities and attacks cannot take place unnoticed from development to production environments, thus fostering collaboration between DevOps and Sec teams through a unified platform. The latest Always-Active API Security capabilities enable Dev to remediate vulnerabilities early and Sec to protect what has not been remediated.
“The CISOs I speak to consistently emphasize the need for a solution that combines the functionalities of WAF, RASP, and DAST or SAST, rather than having multiple standalone AppSec tools. Having the ability to consolidate all these functions into one platform will decrease operational burden, reduce complexity, and foster collaboration between DevOps and security teams,” said Gene Fay, CEO at ThreatX. “We are excited to provide these unified runtime and dynamic API testing capabilities by extending ThreatX’s RAAP offering, enabling DevSecOps to remediate vulnerabilities like never before.”
ThreatX RAAP is easily deployed as a sidecar container within a Kubernetes (K8) environment without requiring an in-line deployment. It may be installed as a standalone solution or coupled with the ThreatX API & Application Protection – Edge solution.
Industry News
Redgate announced that its core solutions are listed in Amazon Web Services (AWS) Marketplace.
LambdaTest introduced a suite of new features to its AI-powered Test Manager, designed to simplify and enhance the test management experience for software development and QA teams.
StackHawk launched Oversight to provide security teams with a birds-eye view of their API security program.
DataStax announced the enhancement of its GitHub Copilot extension with its AI Platform-as-a-Service (AI PaaS) solution.
Opsera partnered with Databricks to empower software and DevOps engineers to deliver software faster, safer and smarter through AI/ML model deployments and schema rollback capabilities.
GitHub announced the next evolution of its Copilot-powered developer platform.
Crowdbotics released an extension for GitHub Copilot, available now through the GitHub and Azure Marketplaces.
Copado has integrated Copado AI into its Community to streamline support and accelerate issues resolution.
Mend.io and HeroDevs have forged a new partnership allowing Mend.io to offer HeroDevs support for deprecated packages.
Synechron has acquired Cloobees, a Salesforce implementation partner.
Check Point® Software Technologies Ltd. has been named as one of the World’s Best Employers by Forbes for the fifth year in a row.
Opsera announced its AI Code Assistant Insights.
Gearset released its latest innovation for Salesforce DevOps: Dev Sandbox Syncing.
Treblle announced the release of Treblle 3.0, its AI-enhanced API intelligence platform.